Compliance Job
The Compliance Job serves the purpose of configuring compliance rules, encompassing factors such as operating system version, online connectivity to the SureMDM server, and battery levels on devices. It enables administrators to proactively initiate designated actions, such as blacklisting devices or performing data wipes, in response to identified non-compliance. This job empowers administrators to establish alerts and notifications for prompt detection of these vulnerabilities.
To create a Compliance Job and deploy it to the enrolled device(s) or group(s) remotely, follow these steps:
1. Navigate to SureMDM Web Console > Jobs > New Job > macOS > Compliance Jobs.
2. In the Compliance Job prompt, enter a Job Name.
3. Select an option from the below list to create compliance rules and click Configure.
| Option | Description |
|---|---|
| OS Version | Define compliance rules based on the operating system version of the device. |
| Online Device Connectivity | Set compliance conditions based on the device’s connection status with the SureMDM server. |
| Battery | Configure compliance rules based on the device’s battery percentage. |
| System Health Compliance | Create compliance rules based on the device’s internal temperature and battery health. |
| Device Storage | Set compliance thresholds based on available or used storage on the device. |
| Device Encryption | Define rules to ensure device encryption is enabled and compliant. |
| Device Uptime | Monitor and set compliance based on the continuous uptime duration of the device. |
| Application Policy | Specify apps to be blocklisted or allowlisted as part of compliance enforcement. |
| Hardware Change | Configure rules to detect and respond to hardware modifications. |
| Firewall Policy | Create rules ensuring device compliance with firewall settings and policies. |
4. Under Out of Compliance Actions, select the appropriate action from the following when the compliance rules are violated:
| Option Name | Description |
|---|---|
| Send Message | Send a custom message to the SureMDM Console. |
| Move to Blocklist | Move the device to the blocklist to restrict its access. |
| Wipe the Device | Remotely wipe all data from the device. |
| Lock Device | Remotely lock the device to prevent unauthorized usage. |
| E-mail Notification | Send an email alert to the configured recipient(s). |
| Apply Job | Apply a predefined job to the device for remediation. |
| Send SMS | Send an SMS to the device’s registered number. |
5. Click Add Action to add additional Out of Compliance Actions.
6. Click Save.
The newly created job will be listed in the Jobs List section.
7. Go back to Home tab and select the macOS device(s) or group(s).
8. Click Apply to launch the Apply Job/Profile To Device prompt .
9. In the Apply Job/Profile To Device prompt, select the job and click Apply.